ζΈιζ΅θ―ζε ³ηPOCγEXPγθζ¬γζζγε°ε·₯ε ·η---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
NextSploit is a command-line tool designed to detect and exploit CVE-2025-29927, a security flaw in Next.js
Authentication bypass for outdated WoW emulation authentication servers
Exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager
A stealth SSH backdoor leveraging PAM shared object (.so) injection to bypass authentication and gain SSH access.
Authentication Bypass Vulnerability β CVE-2024β4358 β Telerik Report Server 2024
A PoC exploit for CVE-2023-51467 - Apache OFBiz Authentication Bypass
Hack Karadeniz 2022 CyberCafe sorusu iΓ§in yazdΔ±ΔΔ±m writeup
This repository contains a basic custom lab environment designed to demonstrate and explore SQL injection vulnerabilities. The lab provides a hands-on learning experience to understand the risks associated with insecure coding practices and the impact of SQL injection attacks on web applications.
The Vulnerability of GoAhead Service on VStarcam C34S-X4 that allows you to download system.ini configuration file and get login and password.
WARNING: This is a vulnerable application to test the exploit for the Really Simple Security < 9.1.2 authentication bypass (CVE-2024-10924). Run it at your own risk!
A PoC exploit for CVE-2024-27198 - JetBrains TeamCity Authentication Bypass
It is a simple password brute force tool designed for ethical hacking and security testing. Automates the process of selecting passwords for a given user on a website by sending POST requests with different passwords and analyzing the response.
A Python tool for decrypting passwords hashed with the AuthMe SHA256 algorithm. Ideal for penetration testing and security audits on Minecraft servers using the AuthMe authentication plugin.
Authentication Bypass PoC for CVE-2025-2825 β Exploiting CrushFTP 10.x
Exploits for CVE-2020-9376 and CVE-2020-9377
π‘οΈ Web Penetration Testing is the process of testing websites or web apps for security flaws. π It helps find vulnerabilities like SQL injection, XSS, and authentication bypass. π¨ Used to protect data, improve security, and prevent hacking attacks.
This repository demonstrates a privilege escalation attack targeting Open5GS's WebUI, exploiting unauthenticated database connections and forged session cookies/JWT tokens. The analysis reveals critical vulnerabilities in authentication mechanisms, offering insights for securing 5G network components.
PoC for CVE-2025-5777 β Auth Bypass and RCE in Trend Micro Apex Central
Apache Superset - Authentication Bypass
Add a description, image, and links to the authentication-bypass topic page so that developers can more easily learn about it.
To associate your repository with the authentication-bypass topic, visit your repo's landing page and select "manage topics."